An employee has been using the same password for multiple applications and websites for the past several years. Which of the following would be best to prevent security issues?
An employee has been using the same password for multiple applications and websites for the past several years. Which of the following would be best to prevent security issues?
The best way to prevent security issues in this scenario is to implement expiration policies. This would require the employee to change their password regularly, which reduces the risk of the same password being used across multiple applications and websites for extended periods. While complexity requirements do enhance security, they do not address the issue of using the same password over a long time frame. Updating antivirus definitions and configuring firewall settings do not directly address the problem described.
The question didn't say the password wasn't complex, it just said the same password. So in my opinion, password expiration policy should be the proper option.